Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-nahy-5pzp-t7du

Summary jasper: JP2 encoder NULL pointer dereference due to uninitialized cmprof_

Aliases

alias	CVE-2016-9600

Fixed_packages

Affected_packages

url pkg:rpm/redhat/jasper@1.900.1-21?arch=el6_9

purl pkg:rpm/redhat/jasper@1.900.1-21?arch=el6_9

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1hnp-pddx-e3dv

vulnerability	VCID-269d-ukkx-5be1

vulnerability	VCID-2hsx-pkhc-83hm

vulnerability	VCID-35h9-tgzm-nqgj

vulnerability	VCID-3a69-x6rk-abh5

vulnerability	VCID-3cev-b9pf-eqa9

vulnerability	VCID-43ye-nt3a-nbcx

vulnerability	VCID-4553-8upn-57ap

vulnerability	VCID-5x4z-q915-4uca

vulnerability	VCID-5xrq-9s1s-bqd1

vulnerability	VCID-6cmg-36hb-jyaj

vulnerability	VCID-ag93-fc4f-rbau

vulnerability	VCID-amqe-dtc6-sff7

vulnerability	VCID-c8ht-bw6h-kyfz

vulnerability	VCID-cfs1-twuv-6bdd

vulnerability	VCID-d2sw-3wx3-93dq

vulnerability	VCID-dnhz-hrtp-v3dx

vulnerability	VCID-fg7h-hmyh-n3b6

vulnerability	VCID-g3j4-t9zs-a7dk

vulnerability	VCID-gaf1-dupx-bbad

vulnerability	VCID-gm8p-bwj3-hfa5

vulnerability	VCID-ju5w-w2df-ebh2

vulnerability	VCID-jvzq-hp2p-tkgx

vulnerability	VCID-nahy-5pzp-t7du

vulnerability	VCID-q2aq-m9ct-bya8

vulnerability	VCID-qgup-zf5g-43gz

vulnerability	VCID-r477-2yb6-6kcg

vulnerability	VCID-r48k-3p1p-53g5

vulnerability	VCID-wvzg-mu5e-wqdq

vulnerability	VCID-ywxr-sgh2-p7ar

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jasper@1.900.1-21%3Farch=el6_9

url pkg:rpm/redhat/jasper@1.900.1-30?arch=el7_3

purl pkg:rpm/redhat/jasper@1.900.1-30?arch=el7_3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1hnp-pddx-e3dv

vulnerability	VCID-269d-ukkx-5be1

vulnerability	VCID-2hsx-pkhc-83hm

vulnerability	VCID-35h9-tgzm-nqgj

vulnerability	VCID-3a69-x6rk-abh5

vulnerability	VCID-3cev-b9pf-eqa9

vulnerability	VCID-43ye-nt3a-nbcx

vulnerability	VCID-4553-8upn-57ap

vulnerability	VCID-5x4z-q915-4uca

vulnerability	VCID-5xrq-9s1s-bqd1

vulnerability	VCID-6cmg-36hb-jyaj

vulnerability	VCID-ag93-fc4f-rbau

vulnerability	VCID-amqe-dtc6-sff7

vulnerability	VCID-c8ht-bw6h-kyfz

vulnerability	VCID-cfs1-twuv-6bdd

vulnerability	VCID-d2sw-3wx3-93dq

vulnerability	VCID-dnhz-hrtp-v3dx

vulnerability	VCID-fg7h-hmyh-n3b6

vulnerability	VCID-g3j4-t9zs-a7dk

vulnerability	VCID-gaf1-dupx-bbad

vulnerability	VCID-gm8p-bwj3-hfa5

vulnerability	VCID-ju5w-w2df-ebh2

vulnerability	VCID-jvzq-hp2p-tkgx

vulnerability	VCID-nahy-5pzp-t7du

vulnerability	VCID-q2aq-m9ct-bya8

vulnerability	VCID-qgup-zf5g-43gz

vulnerability	VCID-r477-2yb6-6kcg

vulnerability	VCID-r48k-3p1p-53g5

vulnerability	VCID-wvzg-mu5e-wqdq

vulnerability	VCID-ywxr-sgh2-p7ar

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jasper@1.900.1-30%3Farch=el7_3

References

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9600.json

reference_id

reference_type

scores

value	4.7
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9600.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-9600

reference_id

reference_type

scores

value	0.00156
scoring_system	epss
scoring_elements	0.36194
published_at	2026-06-07T12:55:00Z

value	0.00156
scoring_system	epss
scoring_elements	0.36128
published_at	2026-06-04T12:55:00Z

value	0.00156
scoring_system	epss
scoring_elements	0.36222
published_at	2026-06-05T12:55:00Z

value	0.00156
scoring_system	epss
scoring_elements	0.36231
published_at	2026-06-06T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-9600

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	2.1
scoring_system	cvssv2
scoring_elements	AV:L/AC:L/Au:N/C:N/I:N/A:P

value	4.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1410026
reference_id	1410026
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1410026

reference_url	https://access.redhat.com/errata/RHSA-2017:1208
reference_id	RHSA-2017:1208
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:1208

reference_url	https://usn.ubuntu.com/3693-1/
reference_id	USN-3693-1
reference_type
scores
url	https://usn.ubuntu.com/3693-1/

Weaknesses

cwe_id	476
name	NULL Pointer Dereference
description	A NULL pointer dereference occurs when the application dereferences a pointer that it expects to be valid, but is NULL, typically causing a crash or exit.

Exploits

Severity_range_score 2.1 - 4.7

Exploitability 0.5

Weighted_severity 4.2

Risk_score 2.1

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-nahy-5pzp-t7du

Vulnerability Instance